CVE-2021-29477
- EPSS 2.02%
- Published 04.05.2021 16:15:07
- Last modified 21.11.2024 06:01:13
Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. An integer overflow bug in Redis version 6.0 or newer could be exploited using the `STRALGO LCS` command to corrupt the heap and po...
CVE-2021-29478
- EPSS 2.49%
- Published 04.05.2021 16:15:07
- Last modified 21.11.2024 06:01:13
Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. An integer overflow bug in Redis 6.2 before 6.2.3 could be exploited to corrupt the heap and potentially result with remote code ex...
CVE-2021-21227
- EPSS 3.18%
- Published 30.04.2021 21:15:08
- Last modified 21.11.2024 05:47:49
Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21228
- EPSS 0.65%
- Published 30.04.2021 21:15:08
- Last modified 21.11.2024 05:47:49
Insufficient policy enforcement in extensions in Google Chrome prior to 90.0.4430.93 allowed an attacker who convinced a user to install a malicious extension to bypass navigation restrictions via a crafted Chrome Extension.
CVE-2021-21229
- EPSS 0.86%
- Published 30.04.2021 21:15:08
- Last modified 21.11.2024 05:47:49
Incorrect security UI in downloads in Google Chrome on Android prior to 90.0.4430.93 allowed a remote attacker to perform domain spoofing via a crafted HTML page.
CVE-2021-21230
- EPSS 3.61%
- Published 30.04.2021 21:15:08
- Last modified 21.11.2024 05:47:49
Type confusion in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21231
- EPSS 1.95%
- Published 30.04.2021 21:15:08
- Last modified 21.11.2024 05:47:49
Insufficient data validation in V8 in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21232
- EPSS 1.71%
- Published 30.04.2021 21:15:08
- Last modified 21.11.2024 05:47:49
Use after free in Dev Tools in Google Chrome prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-21233
- EPSS 2.33%
- Published 30.04.2021 21:15:08
- Last modified 21.11.2024 05:47:49
Heap buffer overflow in ANGLE in Google Chrome on Windows prior to 90.0.4430.93 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.
CVE-2021-29463
- EPSS 0.1%
- Published 30.04.2021 19:15:07
- Last modified 21.11.2024 06:01:09
Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The out-of-bounds read is triggered when Exiv2 is used t...